Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
268
Views
0
Helpful
1
Replies

ASA 5505 not failing back to the preferred route when the ISP comes back up

mspillers
Level 1
Level 1

‎03-14-2014 09:31 AM - edited ‎03-04-2019 10:35 PM

I have an ASA with security plus and I set up a tracked route to failover if I lose connection to the ISP and it works, sort of.

 

I'm doing testing by just pulling the Ethernet cable. When I pull the preferred ISP cable, it fails over as expected. But when I plug the preferred ISP back in, the ASA still routes using the second ISP.

 

I see that it does add the preferred route back in with a metric of 1 but it doesn't use it unless a fail the secondary ISP (with a metric of 254)

 

I'm new to ASA and been searching around but other people don't seem to have this issue. What am I missing?

 

Thanks,

 

Misty

Labels:
0 Helpful
1 Reply 1

svansteensel
Level 1
Level 1

‎03-24-2014 06:12 AM

Misty,

I think since both lines are active at this point in time, you should build in a script to clear the NAT table, something like this:

event manager applet NAT-TRACK

event track 1 state any

action 0.1 cli command "enable"

action 0.2 wait 2

action 0.3 cli command "clear ip nat translations forced"

action 0.4 syslog msg "NAT translation cleared after track state change"

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card